New issue
Advanced search Search tips

Issue 881792 link

Starred by 1 user
Status: Archived
Owner: ----
Closed: Nov 14
Cc:
vamshi.kommuri@chromium.org
mythria@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 2
Type: Bug



Sign in to add a comment

Password manager updates old entry instead of creating a new one

Reported by mr.ber...@gmail.com, Sep 7 
UserAgent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36

Steps to reproduce the problem:
I just lost a saved password. How?

1. I had credentials stored for hrs.de: username (let's say xyz) and a password.
2. I visited https://www.hrs.de/web3/?clientId=ZGVfX2J2YXp1d2U,1, which prompts for an accesscode.
3. I entered the correct access code (that I cannot share)
4. Chrome offered to update the password for my account (xyz), which I of course did not want.
5. But since Chrome allowed to change the username, I blanked it - and since the "Update" button was renamed to "Save", I got the impression that this would NOT update the existing username/password combination, but add a new one.

What is the expected behavior?

What went wrong?
I am not sure, what the bug is.
1. Either, the bug is that Chrome creates the impression that in the "Update Password" dialog, you can create a new username/password combination, although that is not the case.
2. Or, if you should be able to create a new username/password combination, then the bug is that without a username entered, it still updates the existing entry.

One of the two needs to be fixed.

Did this work before? N/A 

Chrome version: 69.0.3497.81  Channel: stable
OS Version: 10.0
Flash Version:

Comment 1 by susan.boorgula@chromium.org, Sep 9

Labels: Needs-Triage-M69
Project Member

Comment 2 by bugdroid1@chromium.org, Sep 10 

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/7db970e7b8673a26b5c09510f0badf4c690a3ccc

commit 7db970e7b8673a26b5c09510f0badf4c690a3ccc
Author: Mythri Alle <mythria@chromium.org>
Date: Mon Sep 10 10:13:18 2018

Check if GeneratedCodeCacheContext is not null when using it

For Incognito mode (and other cases where code caches are disabled)
we do not create the GeneratedCodeCacheContext or the GeneratedCodeCache.
It is required to verify they are non-null before using them.

Bug:  chromium:881792 , chromium:881881
Change-Id: I9cf47ed45e88c2e4df1f4d0a499149893332c98a
Reviewed-on: https://chromium-review.googlesource.com/1215682
Reviewed-by: Kinuko Yasuda <kinuko@chromium.org>
Commit-Queue: Mythri Alle <mythria@chromium.org>
Cr-Commit-Position: refs/heads/master@{#589873}
[modify] https://crrev.com/7db970e7b8673a26b5c09510f0badf4c690a3ccc/content/browser/renderer_host/render_message_filter.cc

Comment 3 by vamshi.kommuri@chromium.org, Sep 11

Cc: vamshi.kommuri@chromium.org mythria@chromium.org
Labels: Triaged-ET Needs-Feedback
@Mythri Alle: As the fix seems to be landed in comment#2, could you please let us know if this can be marked as "Fixed", only if no other fixes are in cue.

Thanks!

Comment 4 by jbanavatu@chromium.org, Nov 14

Labels: Hotlist-DesktopUIChecked
Status: WontFix (was: Unconfirmed)
Closing the bug as a part of UI mass triage. If you feel this issue should still be addressed, feel free to reopen it or to file a new issue.

Comment 5 by mythria@chromium.org, Nov 14

Status: Untriaged (was: WontFix)
oops. Sorry that I missed this somehow. The fix in comment 2 has nothing to do with this bug. It's just the wrong bug id. I am really sorry about this. I somehow didn't realize this earlier. So my is totally unrelated to this. That was a fix for 881881.

Comment 6 by jbanavatu@chromium.org, Nov 14

Status: Archived (was: Untriaged)
**UI mass Triage**

As per c#0, updating bug accordingly.

We were unable to find repro steps for this bug. If you have more data to
reproduce this bug or have clear repro steps, please reopen or file a new issue.

Thanks!

Comment 7 by mr.ber...@gmail.com, Nov 24 

Here are updated repro steps:

1. Go to https://chromium-test1.appspot.com/testing/psl-matching/login
2. Login with "user"/"pass"
3. When asked to save password, do so.
4. In chrome://settings/passwords, verify that the password stored for "user" is "pass"
5. Logout
6. Login with ""/"accesskey" (empty user name - this simulates a page on the same domain that requires only a generic access key)
7. When asked to save/update password, note that the username is prefilled with "user". We do not want that! We want to save another entry with an empty username.
8. So we do just that: delete "user" from the "Update password" dialog. Note that the "Update password" buttons becomes a "Save" button as soon as we updated the username. The "Save" button remains a "Save" button even if the user name is fully deleted, indicating that we will not be updating user's password.
9. Click "Save"

Expected:
In chrome://settings/passwords, the password stored for "user" is "pass", and that "accesskey" is stored without a username.

Actual:
In chrome://settings/passwords, the password stored for "user" is "accesskey". This is a bug.

Comment 8 by mr.ber...@gmail.com, Nov 26 

Refiled as Issue 908303

Sign in to add a comment